【 Weak current College 】 router security using the skills of top ten cheat codes

Router security skills of top ten monitor, now every household has its own computer, router security skill, wireless security configuration will be more simple to make you understand the wonderful world of the Internet.

◆ Router security skill: update your router operating system: just like the network operating system to a consistent sample, router operating system also needs to be updated to correct programming errors, software flaws and cache overflow questions. Always contact your router manufacturer query now updates and version of the operating system.

◆ Router security skill: amendments to the acquiescence of passwords: according to Carnegie Mellon University computer emergency response team that 80% of security events are due to a weak password might acquiesce loosed. Prevent the application of common passwords, and the use of uppercase and lowercase letters, a mixed approach as a more powerful password guidelines.

◆ Disable HTTP configuration and SNMP (easy Web maintenance agreement): your router's local HTTP configuration on a busy network maintenance is very easy to configure. However, this router is also a security question. Assuming that your router has a command line configuration, disable HTTP methods and use of this configuration. Assuming you didn't use your router SNMP, then you do not need to enable this function. Cisco router exists an easy attack suffered GRE tunnel SNMP security flaws.

◆ Router security skill: lock the ICMP (Internet control audio Protocol) ping begged: ping and other ICMP function on network maintenance and hackers are very useful tools. Hackers can use your router enable ICMP function find out you can use to attack your network.

◆ Router security application tips: disable from Internet telnet command: in large non-rare cases, you don't have to come from the Internet interface of the Telnet session automatically. Suppose that you access from the internal router configuration is more secure.

◆ Router security application tips: disable the IP directed broadcasts: IP directed broadcast can permit to you with the implementation of a denial of service attack. One router memory and CPU problems accepting too much begged. Such results would entail cache overflow.

◆ Router security application tips: disable IP routing and IP redirection: redirection allow packets from one interface to come in and go out from another interface. You don't need to put the crafted packets to their own internal network.

◆ Router security skill: packet filtering: packet filtering only pass you permission to enter your network, the packets. Many companies are only allowed to use port 80 (HTTP) and 110/25 port (e-mail). In addition, you can lock and allow the IP address or range.

◆ Router security skill: review of the safety record: resolved easily use some time to review your recorded file, you will see a clear attack even security flaws. You will experience so much of a surprise attack.

◆ Do you want to disable the service: forever without services, both routers, servers, and the task of having to stand in a service are disabled. Cisco equipment has resolved to provide a network operating system acquiescence some small service, such as echo (ECHO), chargen (character attack for Protocol) and discard (discard Protocol). These services, in particular their UDP services, few for reasonable purposes. However, these services can be used to implement a denial of service attacks and other attacks. Packet filtering can prevent these attacks.